Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: mysql support is not compiled into this build of snort

From: wkitty42 () windstream net
Date: Sat, 7 Apr 2018 16:39:24 -0400
On 04/07/2018 04:13 PM, Marcin Dulak wrote:

On Sat, Apr 7, 2018 at 9:20 PM, <wkitty42 () windstream net> wrote:
    2. as Al noted, snort 2.6 is very old and out of date... snort no longer
    talks directly to the databases like it once did... there were too many
    situations that would cause snort to miss traffic (eg: the database was
    down)... snort would get hung up on the database stuff and simply miss
    traffic... so the database code was ripped out and snort only writes to its
    log files... now you use a tool like barnyard2

https://github.com/firnsy/barnyard2 is not maintained.
interesting... when did it become unmaintained?? my understanding is that it has been /the/ tool to use to put snort U2 logs into databases for several years...
in any case, thanks for the heads up... i'll stop recommending it if it is not the Talos recommended tool to use... 



--
 NOTE: No off-list assistance is given without prior approval.
       *Please keep mailing list traffic on the list unless*
       *a signed and pre-paid contract is in effect with us.*
_______________________________________________
Snort-users mailing list
Snort-users () lists snort org
Go to this URL to change user options or unsubscribe:
https://lists.snort.org/mailman/listinfo/snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette
Previous By Date Next
Previous By Thread Next

Current thread: